And that's a wrap for the first day of
@SANSInstitute
#FOR578 class where I have a great pleasure of supporting
Peter s14 Szczepankiewicz.
It is always great to meet new students and have (intelligence) fun exploring all aspect of the discipline. And tomorrow intrusion analysis awaits!

Long time no training.

This week I am gonna attend @sansforensics #for578 live online course. 👀

It will be my first ✨online✨ SANS course, wish me luck with my adhd.

#FOR578 capstone in progress! As it is an analytical challenge it is always exciting to see how different groups approach the issue in a different way. https://media3.giphy.com/media/3oeSAz6FqXCKuNFX6o/giphy.gif?cid=5e2148864fe64e8a4059380dca5c818ae46a4d73c67671ed&rid=giphy.gif&ct=g

#FOR578 capstone in progress! As it is an analytical challenge it is always exciting to see how different groups approach the issue in a different way. https://media3.giphy.com/media/3oeSAz6FqXCKuNFX6o/giphy.gif?cid=5e2148864fe64e8a4059380dca5c818ae46a4d73c67671ed&rid=giphy.gif&ct=g

Starting soon day 5 of the @sansinstitute #FOR578 class - this day is dedicated to topics of dissemination of intelligence products and attribution of malicious activity. I like how in this course you can really see how subsequent bricks of intelligence process - setting requirements, analysis of malicious activity, collection from external sources, analysis and processing come together to allow making analytical judgements.
And tomorrow of course capstone were students will be able to put into practise skills that they acquired through the week :)

Starting soon day 5 of the @sansinstitute #FOR578 class - this day is dedicated to topics of dissemination of intelligence products and attribution of malicious activity. I like how in this course you can really see how subsequent bricks of intelligence process - setting requirements, analysis of malicious activity, collection from external sources, analysis and processing come together to allow making analytical judgements.
And tomorrow of course capstone were students will be able to put into practise skills that they acquired through the week :)

Starting tomorrow until Saturday I will be supporting the very awesome @likethecoins as a vTA during the @sansinstitute Cyber Defense Initiative 2022 #FOR578 class. Looking forward to meeting all the students and having lot of threat intelligence fun.
See you there (online)!

During #FOR578 #cyberthreatintelligence from #sansinstitute about 2 months ago we discussed Intrusion Analysis and the Diamond Model. I then found a "Report Template for Threat Intelligence and Incident Response" in Word and PDF Format created by @lennyzeltser. I put it into an Excel format and added in Diamond Model visualizations as I thought it might be useful to track the vertices based on #cyberkillchain phase as well as during each COA during IR. Hope at least someone finds it useful.

It can be found at https://github.com/cybersheepdog/Report-Template-for-TI-and-IR